Vulnerability Details CVE-2019-10807
Blamer versions prior to 1.0.1 allows execution of arbitrary commands. It is possible to inject arbitrary commands as part of the arguments provided to blamer.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2019-10807
-
cpe:2.3:a:blamer_project:blamer:-
-
cpe:2.3:a:blamer_project:blamer:0.1.1
-
cpe:2.3:a:blamer_project:blamer:0.1.10
-
cpe:2.3:a:blamer_project:blamer:0.1.11
-
cpe:2.3:a:blamer_project:blamer:0.1.12
-
cpe:2.3:a:blamer_project:blamer:0.1.13
-
cpe:2.3:a:blamer_project:blamer:0.1.2
-
cpe:2.3:a:blamer_project:blamer:0.1.3
-
cpe:2.3:a:blamer_project:blamer:0.1.5
-
cpe:2.3:a:blamer_project:blamer:0.1.7
-
cpe:2.3:a:blamer_project:blamer:0.1.8
-
cpe:2.3:a:blamer_project:blamer:0.1.9